CVE-2017-9219

Published: 6/27/2017 Last updated: 8/5/2024 Reserved: 5/24/2017

The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.7 allows remote attackers to cause a denial of service (memory allocation error and application crash) via a crafted mp4 file.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (2)

conf-faad faad

Products affected (1)

Product	Vendor	Version
n/a	n/a	earlier than 9.1.0.252(C432E4R1P9T8)

References (2)

http://seclists.org/fulldisclosure/2017/Jun/32
http://seclists.org/fulldisclosure/2017/Jun/32